mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-27 18:13:17 +00:00
92 lines
2.3 KiB
Go
92 lines
2.3 KiB
Go
package resource
|
|
|
|
import (
|
|
"reflect"
|
|
|
|
"github.com/google/cel-go/cel"
|
|
"github.com/google/cel-go/common/types"
|
|
"github.com/google/cel-go/ext"
|
|
apiservercel "k8s.io/apiserver/pkg/cel"
|
|
)
|
|
|
|
const libraryName = "kyverno.resource"
|
|
|
|
type lib struct{}
|
|
|
|
func Lib() cel.EnvOption {
|
|
// create the cel lib env option
|
|
return cel.Lib(&lib{})
|
|
}
|
|
|
|
func Types() []*apiservercel.DeclType {
|
|
return []*apiservercel.DeclType{
|
|
configMapType,
|
|
imageDataType,
|
|
}
|
|
}
|
|
|
|
func (*lib) LibraryName() string {
|
|
return libraryName
|
|
}
|
|
|
|
func (c *lib) CompileOptions() []cel.EnvOption {
|
|
return []cel.EnvOption{
|
|
ext.NativeTypes(reflect.TypeFor[Context]()),
|
|
c.extendEnv,
|
|
}
|
|
}
|
|
|
|
func (*lib) ProgramOptions() []cel.ProgramOption {
|
|
return []cel.ProgramOption{}
|
|
}
|
|
|
|
func (c *lib) extendEnv(env *cel.Env) (*cel.Env, error) {
|
|
// create implementation, recording the envoy types aware adapter
|
|
impl := impl{
|
|
Adapter: env.CELTypeAdapter(),
|
|
}
|
|
// build our function overloads
|
|
libraryDecls := map[string][]cel.FunctionOpt{
|
|
"GetConfigMap": {
|
|
cel.MemberOverload(
|
|
"resource_getconfigmap_string_string",
|
|
[]*cel.Type{ContextType, types.StringType, types.StringType},
|
|
configMapType.CelType(),
|
|
cel.FunctionBinding(impl.get_configmap_string_string),
|
|
),
|
|
},
|
|
"List": {
|
|
// TODO: should not use DynType in return
|
|
cel.MemberOverload(
|
|
"resource_list_string_string_string",
|
|
[]*cel.Type{ContextType, types.StringType, types.StringType, types.StringType},
|
|
types.DynType,
|
|
cel.FunctionBinding(impl.list_resources_string_string_string),
|
|
),
|
|
},
|
|
"Get": {
|
|
// TODO: should not use DynType in return
|
|
cel.MemberOverload(
|
|
"resource_get_string_string_string_string",
|
|
[]*cel.Type{ContextType, types.StringType, types.StringType, types.StringType, types.StringType},
|
|
types.DynType,
|
|
cel.FunctionBinding(impl.get_resource_string_string_string_string),
|
|
),
|
|
},
|
|
"GetImageData": {
|
|
cel.MemberOverload(
|
|
"resource_getimagedata_string",
|
|
[]*cel.Type{ContextType, types.StringType},
|
|
types.DynType,
|
|
cel.BinaryBinding(impl.get_imagedata_string),
|
|
),
|
|
},
|
|
}
|
|
// create env options corresponding to our function overloads
|
|
options := []cel.EnvOption{}
|
|
for name, overloads := range libraryDecls {
|
|
options = append(options, cel.Function(name, overloads...))
|
|
}
|
|
// extend environment with our function overloads
|
|
return env.Extend(options...)
|
|
}
|